Vulnerabilities > CVE-2002-0785 - Unspecified vulnerability in AOL Instant Messenger

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

aol

NVD

Published: 2002-08-12

Updated: 2008-09-05

Summary

AOL Instant Messenger (AIM) allows remote attackers to cause a denial of service (crash) via an "AddBuddy" link with the ScreenName parameter set to a large number of comma-separated values, possibly triggering a buffer overflow.

Vulnerable Configurations

Part	Description	Count
Application	Aol AOL Instant Messenger 4.2 AOL Instant Messenger 4.0 AOL Instant Messenger 4.8.2646 AOL Instant Messenger 4.5 AOL Instant Messenger 4.3 AOL Instant Messenger 4.1.2010 AOL Instant Messenger 4.6 AOL Instant Messenger 4.3.2229 AOL Instant Messenger 4.8.2616 AOL Instant Messenger 4.2.1193 AOL Instant Messenger 4.7 AOL Instant Messenger 4.7.2480 AOL Instant Messenger 4.4 AOL Instant Messenger 4.1	14

Summary

Vulnerable Configurations

References